npm - @owf/mdoc - Versions diffs - 0.6.0 → 0.6.1-alpha-20260521074626 - Mend

@owf/mdoc 0.6.0 → 0.6.1-alpha-20260521074626

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -1,209 +1,56 @@
-import { Options } from "cbor-x";
+import { CborStructure, CoseKey, CoseKey as CoseKey$1, CoseKeyDecodedStructure, CoseKeyEncodedStructure, CoseKeyOptions, Curve, DataItem, DateOnly, DecodedStructureType, DigestAlgorithm, EncodedStructureType, KeyOps, KeyType, Mac0, Mac0 as Mac0$1, Mac0Context, Mac0DecodedStructure, Mac0EncodedStructure, Mac0Options, MacAlgorithm, ProtectedHeaders, RegisteredCwtClaimKey, RegisteredCwtHeaderClaimKey, Sign1, Sign1 as Sign1$1, Sign1Context, Sign1DecodedStructure, Sign1EncodedStructure, Sign1Options, SignatureAlgorithm, SignatureAlgorithm as SignatureAlgorithm$1, UnprotectedHeaders, cborDecode, cborEncode } from "@owf/cose";
 import z$1, { z } from "zod";
-//#region src/cbor/cbor-structure.d.ts
-type CborEncodeOptions = {
-  asDataItem?: boolean;
-};
-type AnyCborStructure = CborStructure<any, any>;
-type EncodedStructureType<T> = T extends CborStructure<infer EncodedStructure, unknown> ? EncodedStructure : any;
-type DecodedStructureType<T> = T extends CborStructure<unknown, infer DecodedStructure> ? DecodedStructure : any;
-type CborStructureStaticThis<T extends AnyCborStructure> = {
-  new (structure: any): T;
-  encodingSchema: z.ZodType<any, any, any> | undefined;
-  fromEncodedStructure: (encodedStructure: EncodedStructureType<T>) => {
-    decodedStructure: DecodedStructureType<T>;
+//#region src/context.d.ts
+type MaybePromise<T> = Promise<T> | T;
+interface MdocContext {
+  crypto: {
+    random: (length: number) => Uint8Array;
+    digest: (input: {
+      digestAlgorithm: DigestAlgorithm;
+      bytes: Uint8Array;
+    }) => MaybePromise<Uint8Array>;
+    hdkf: (input: {
+      digestAlgorithm?: DigestAlgorithm;
+      privateKey: Uint8Array;
+      publicKey: Uint8Array;
+      salt: Uint8Array;
+      info: Uint8Array;
+    }) => MaybePromise<Uint8Array>;
+  };
+  cose: {
+    sign1: {
+      sign: Sign1Context['sign'];
+      verify: Sign1Context['verify'];
+    };
+    mac0: {
+      sign: Mac0Context['mac'];
+      verify(input: {
+        mac0: Mac0$1;
+        key: CoseKey$1 | Uint8Array;
+      }): MaybePromise<boolean>;
+    };
+  };
+  x509: {
+    getIssuerNameField: Sign1Context['x509']['getIssuerNameField'];
+    getPublicKey: Sign1Context['x509']['getPublicKey'];
+    verifyCertificateChain: (input: {
+      trustedCertificates: Uint8Array[];
+      x5chain: Uint8Array[];
+      now?: Date;
+    }) => MaybePromise<void>;
+    getCertificateData: (input: {
+      certificate: Uint8Array;
+    }) => MaybePromise<{
+      issuerName: string;
+      subjectName: string;
+      serialNumber: string;
+      thumbprint: string;
+      notBefore: Date;
+      notAfter: Date;
+      pem: string;
+    }>;
   };
-};
-declare class CborStructure<EncodedStructure = unknown, DecodedStructure = EncodedStructure> {
-  protected structure: DecodedStructure;
-  constructor(structure: DecodedStructure);
-  get decodedStructure(): DecodedStructure;
-  /**
-   * Static getter for the Zod codec schema that defines the CBOR structure.
-   * Subclasses CAN override this to provide their specific schema for automatic encoding/decoding.
-   * The schema should be a Zod schema or codec that handles validation and transformation.
-   * If not provided, subclasses must override encode(), decode(), and fromEncodedStructure().
-   */
-  static get encodingSchema(): z.ZodType | undefined;
-  /**
-   * Returns the encoded structure that will be serialized to CBOR.
-   * By default, returns the protected structure property.
-   * Override if custom encoding logic is needed.
-   */
-  get encodedStructure(): EncodedStructure;
-  /**
-   * Encodes this structure to CBOR bytes.
-   */
-  encode(options?: CborEncodeOptions): Uint8Array;
-  /**
-   * Decodes CBOR bytes into a structure instance.
-   * Uses the encodingSchema's decode() method to validate and transform the decoded data.
-   */
-  static decode<T extends AnyCborStructure>(this: CborStructureStaticThis<T>, bytes: Uint8Array): T;
-  /**
-   * Creates a structure instance from the encoded CBOR structure (after calling cborDecode).
-   *
-   * Uses the encodingSchema's decode() method to validate and transform the structure if available.
-   * Otherwise, subclasses must override this method.
-   */
-  static fromEncodedStructure<T extends AnyCborStructure>(this: CborStructureStaticThis<T>, encodedStructure: EncodedStructureType<T>): T;
-  static fromDataItem<T extends AnyCborStructure>(this: CborStructureStaticThis<T>, dataItem: unknown): T;
-  /**
-   * Creates a structure instance from the decoded structure.
-   *
-   * Uses the encodingSchema's parse method to validate the structure if available.
-   * Otherwise, subclasses must override this method.
-   */
-  static fromDecodedStructure<T extends AnyCborStructure>(this: CborStructureStaticThis<T>, decodedStructure: DecodedStructureType<T>): T;
-}
-//#endregion
-//#region src/cbor/data-item.d.ts
-type DataItemOptions<T = unknown> = {
-  data: T;
-  buffer: Uint8Array;
-} | {
-  data: T;
-} | {
-  buffer: Uint8Array;
-};
-/**
- * DataItem is an extension defined https://www.rfc-editor.org/rfc/rfc8949.html#name-encoded-cbor-data-item
- *  > Sometimes it is beneficial to carry an embedded CBOR data item that is
- *  > not meant to be decoded immediately at the time the enclosing data item is being decoded.
- *
- * The idea of this class is to provide lazy encode and decode of cbor data.
- *
- * Due to a bug in the cbor-x library, we are eagerly encoding the data in the constructor.
- * https://github.com/kriszyp/cbor-x/issues/83
- *
- */
-declare class DataItem<T = unknown> {
-  #private;
-  constructor(options: DataItemOptions<T>);
-  get data(): T;
-  get buffer(): Uint8Array;
-  static fromData<T>(data: T): DataItem<T>;
-  static fromBuffer<T>(buffer: Uint8Array): DataItem<T>;
-}
-//#endregion
-//#region src/cbor/models/date-only.d.ts
-declare const customInspectSymbol: unique symbol;
-declare class DateOnly {
-  private date;
-  constructor(date?: string);
-  get [Symbol.toStringTag](): string;
-  toString(): string;
-  toJSON(): string;
-  toISOString(): string;
-  [customInspectSymbol](): string;
-}
-//#endregion
-//#region src/cbor/parser.d.ts
-type CborOptions = Options & {
-  unwrapTopLevelDataItem?: boolean;
-};
-declare const cborDecode: <T>(input: Uint8Array, options?: CborOptions) => T;
-declare const cborEncode: (obj: unknown, options?: Options) => Uint8Array;
-//#endregion
-//#region src/cose/error.d.ts
-declare class CoseError extends Error {
-  constructor(message?: string);
-}
-declare class CoseUnsupportedMacError extends CoseError {}
-declare class CoseInvalidSignatureError extends CoseError {}
-declare class CoseInvalidAlgorithmError extends CoseError {}
-declare class CosePayloadMustBeNullError extends CoseError {}
-declare class CosePayloadMustBeDefinedError extends CoseError {}
-declare class CosePayloadInvalidStructureError extends CoseError {}
-declare class CoseInvalidTypeForKeyError extends CoseError {}
-declare class CoseInvalidValueForKtyError extends CoseError {}
-declare class CoseInvalidKtyForRawError extends CoseError {}
-declare class CoseXNotDefinedError extends CoseError {}
-declare class CoseYNotDefinedError extends CoseError {}
-declare class CoseDNotDefinedError extends CoseError {}
-declare class CoseKNotDefinedError extends CoseError {}
-declare class CoseEphemeralMacKeyIsRequiredError extends CoseError {}
-declare class CoseCertificateNotFoundError extends CoseError {}
-declare class CoseKeyTypeNotSupportedForPrivateKeyExtractionError extends CoseError {}
-//#endregion
-//#region src/cose/headers/defaults.d.ts
-declare enum Header {
-  Algorithm = 1,
-  Critical = 2,
-  ContentType = 3,
-  KeyId = 4,
-  Iv = 5,
-  PartialIv = 6,
-  CounterSignature = 7,
-  CounterSignature0 = 9,
-  CounterSignatureV2 = 11,
-  CounterSignature0V2 = 12,
-  X5Bag = 32,
-  X5Chain = 33,
-  X5T = 34,
-  X5U = 35
-}
-declare enum SignatureAlgorithm {
-  EdDSA = -8,
-  ES256 = -7,
-  ES384 = -35,
-  ES512 = -36,
-  PS256 = -37,
-  PS384 = -38,
-  PS512 = -39,
-  RS256 = -257,
-  RS384 = -258,
-  RS512 = -259
-}
-declare enum MacAlgorithm {
-  HS256 = 5,
-  HS384 = 6,
-  HS512 = 7
-}
-declare enum EncryptionAlgorithm {
-  A128GCM = 1,
-  A192GCM = 2,
-  A256GCM = 3,
-  Direct = -6
-}
-type DigestAlgorithm = 'SHA-256' | 'SHA-384' | 'SHA-512';
-//#endregion
-//#region src/cose/headers/protected-headers.d.ts
-declare const protectedHeadersEncodedStructure: z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>;
-declare const protectedHeadersDecodedStructure: z$1.ZodMap<z$1.ZodNumber, z$1.ZodUnknown>;
-type ProtectedHeadersDecodedStructure = z$1.infer<typeof protectedHeadersDecodedStructure>;
-type ProtectedHeadersEncodedStructure = z$1.infer<typeof protectedHeadersEncodedStructure>;
-type ProtectedHeaderOptions = {
-  protectedHeaders?: ProtectedHeadersDecodedStructure;
-};
-declare class ProtectedHeaders extends CborStructure<ProtectedHeadersEncodedStructure, ProtectedHeadersDecodedStructure> {
-  static get encodingSchema(): z$1.ZodCodec<z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>, z$1.ZodMap<z$1.ZodNumber, z$1.ZodUnknown>>;
-  get headers(): Map<number, unknown>;
-  static create(options: ProtectedHeaderOptions): ProtectedHeaders;
-}
-//#endregion
-//#region src/cose/headers/unprotected-headers.d.ts
-declare const unprotectedHeadersStructure: z$1.ZodMap<z$1.ZodNumber, z$1.ZodUnknown>;
-type UnprotectedHeadersStructure = z$1.infer<typeof unprotectedHeadersStructure>;
-type UnprotectedHeaderOptions = {
-  unprotectedHeaders?: UnprotectedHeadersStructure;
-};
-declare class UnprotectedHeaders extends CborStructure<UnprotectedHeadersStructure> {
-  static get encodingSchema(): z$1.ZodMap<z$1.ZodNumber, z$1.ZodUnknown>;
-  get headers(): Map<number, unknown>;
-  static create(options: UnprotectedHeaderOptions): UnprotectedHeaders;
-}
-//#endregion
-//#region src/cose/key/curve.d.ts
-declare enum Curve {
-  'P-256' = 1,
-  'P-384' = 2,
-  'P-521' = 3,
-  X25519 = 4,
-  X448 = 5,
-  Ed25519 = 6,
-  Ed448 = 7
 }
 //#endregion
 //#region src/utils/transformers.d.ts
@@ -310,141 +157,6 @@ declare function typedMap<const Entries extends EntriesBase>(entries: Entries, {
   decode?: (encoded: Map<unknown, unknown>, originalDecode: (decoded: Map<unknown, unknown>) => TypedMap<InferredSchema<Entries>, OptionalKeys<Entries>>) => TypedMap<InferredSchema<Entries>, OptionalKeys<Entries>>;
 }): z.ZodCodec<z.ZodMap<z.ZodUnknown, z.ZodUnknown>, z.ZodCustom<TypedMap<InferredSchema<Entries>, OptionalKeys<Entries>>, TypedMap<InferredSchema<Entries>, OptionalKeys<Entries>>>>;
 //#endregion
-//#region src/cose/key/key-operation.d.ts
-declare enum KeyOps {
-  Sign = 1,
-  Verify = 2,
-  Encrypt = 3,
-  Decrypt = 4,
-  WrapKey = 5,
-  UnwrapKey = 6,
-  DeriveKey = 7,
-  DeriveBits = 8,
-  MACCreate = 9,
-  MACVerify = 10
-}
-//#endregion
-//#region src/cose/key/key-type.d.ts
-declare enum KeyType {
-  Okp = 1,
-  Ec = 2,
-  Oct = 4,
-  Reserved = 0
-}
-//#endregion
-//#region src/cose/key/key.d.ts
-declare enum CoseKeyParameter {
-  KeyType = 1,
-  KeyId = 2,
-  Algorithm = 3,
-  KeyOps = 4,
-  BaseIv = 5,
-  CurveOrK = -1,
-  X = -2,
-  Y = -3,
-  D = -4
-}
-declare const coseKeySchema: z.ZodCodec<z.ZodMap<z.ZodUnknown, z.ZodUnknown>, z.ZodCustom<TypedMap<{
-  1: string | KeyType;
-  2: string | Uint8Array<ArrayBufferLike>;
-  3: string | number;
-  4: (string | KeyOps)[];
-  5: Uint8Array<ArrayBufferLike>;
-  [-1]: Uint8Array<ArrayBufferLike> | Curve;
-  [-2]: Uint8Array<ArrayBufferLike>;
-  [-3]: Uint8Array<ArrayBufferLike>;
-  [-4]: Uint8Array<ArrayBufferLike>;
-}, CoseKeyParameter.KeyId | CoseKeyParameter.Algorithm | CoseKeyParameter.KeyOps | CoseKeyParameter.BaseIv | CoseKeyParameter.CurveOrK | CoseKeyParameter.X | CoseKeyParameter.Y | CoseKeyParameter.D>, TypedMap<{
-  1: string | KeyType;
-  2: string | Uint8Array<ArrayBufferLike>;
-  3: string | number;
-  4: (string | KeyOps)[];
-  5: Uint8Array<ArrayBufferLike>;
-  [-1]: Uint8Array<ArrayBufferLike> | Curve;
-  [-2]: Uint8Array<ArrayBufferLike>;
-  [-3]: Uint8Array<ArrayBufferLike>;
-  [-4]: Uint8Array<ArrayBufferLike>;
-}, CoseKeyParameter.KeyId | CoseKeyParameter.Algorithm | CoseKeyParameter.KeyOps | CoseKeyParameter.BaseIv | CoseKeyParameter.CurveOrK | CoseKeyParameter.X | CoseKeyParameter.Y | CoseKeyParameter.D>>>;
-type CoseKeyDecodedStructure = z.output<typeof coseKeySchema>;
-type CoseKeyEncodedStructure = z.input<typeof coseKeySchema>;
-type CoseKeyOptions = {
-  keyType: KeyType | string;
-  keyId?: string;
-  algorithm?: string | number;
-  keyOps?: Array<KeyOps | string>;
-  baseIv?: Uint8Array;
-  curve?: Curve;
-  x?: Uint8Array;
-  y?: Uint8Array;
-  d?: Uint8Array;
-  k?: Uint8Array;
-};
-declare class CoseKey extends CborStructure<CoseKeyEncodedStructure, CoseKeyDecodedStructure> {
-  static get encodingSchema(): z.ZodCodec<z.ZodMap<z.ZodUnknown, z.ZodUnknown>, z.ZodCustom<TypedMap<{
-    1: string | KeyType;
-    2: string | Uint8Array<ArrayBufferLike>;
-    3: string | number;
-    4: (string | KeyOps)[];
-    5: Uint8Array<ArrayBufferLike>;
-    [-1]: Uint8Array<ArrayBufferLike> | Curve;
-    [-2]: Uint8Array<ArrayBufferLike>;
-    [-3]: Uint8Array<ArrayBufferLike>;
-    [-4]: Uint8Array<ArrayBufferLike>;
-  }, CoseKeyParameter.KeyId | CoseKeyParameter.Algorithm | CoseKeyParameter.KeyOps | CoseKeyParameter.BaseIv | CoseKeyParameter.CurveOrK | CoseKeyParameter.X | CoseKeyParameter.Y | CoseKeyParameter.D>, TypedMap<{
-    1: string | KeyType;
-    2: string | Uint8Array<ArrayBufferLike>;
-    3: string | number;
-    4: (string | KeyOps)[];
-    5: Uint8Array<ArrayBufferLike>;
-    [-1]: Uint8Array<ArrayBufferLike> | Curve;
-    [-2]: Uint8Array<ArrayBufferLike>;
-    [-3]: Uint8Array<ArrayBufferLike>;
-    [-4]: Uint8Array<ArrayBufferLike>;
-  }, CoseKeyParameter.KeyId | CoseKeyParameter.Algorithm | CoseKeyParameter.KeyOps | CoseKeyParameter.BaseIv | CoseKeyParameter.CurveOrK | CoseKeyParameter.X | CoseKeyParameter.Y | CoseKeyParameter.D>>>;
-  get keyType(): string | KeyType;
-  get keyId(): string | undefined;
-  get algorithm(): SignatureAlgorithm | undefined;
-  get keyOps(): (string | KeyOps)[] | undefined;
-  get baseIv(): Uint8Array<ArrayBufferLike> | undefined;
-  get curve(): Curve | undefined;
-  get x(): Uint8Array<ArrayBufferLike> | undefined;
-  get y(): Uint8Array<ArrayBufferLike> | undefined;
-  get d(): Uint8Array<ArrayBufferLike> | undefined;
-  get k(): Uint8Array<ArrayBufferLike> | undefined;
-  static create(options: CoseKeyOptions): CoseKey;
-  static fromJwk(jwk: Record<string, unknown>): CoseKey;
-  get publicKey(): Uint8Array<ArrayBufferLike>;
-  get privateKey(): Uint8Array<ArrayBufferLike>;
-  get jwk(): Record<string, unknown>;
-}
-//#endregion
-//#region src/cose/key/jwk.d.ts
-declare const jwkCoseOptionsMap: Record<string, keyof CoseKeyOptions>;
-declare const coseOptionsJwkMap: {
-  [k: string]: string;
-};
-declare const jwkToCoseKey: {
-  kty: (kty?: unknown) => KeyType;
-  crv: (crv?: unknown) => Curve;
-  alg: (alg?: unknown) => MacAlgorithm | SignatureAlgorithm | EncryptionAlgorithm;
-  kid: (kid?: unknown) => unknown;
-  keyOps: (keyOps?: unknown) => KeyOps[] | undefined;
-  x: (s?: unknown) => Uint8Array<ArrayBuffer> | undefined;
-  y: (s?: unknown) => Uint8Array<ArrayBuffer> | undefined;
-  d: (s?: unknown) => Uint8Array<ArrayBuffer> | undefined;
-};
-declare const coseKeyToJwk: {
-  keyType: (keyType: KeyType) => any;
-  keyId: (keyId: unknown) => unknown;
-  algorithm: (algorithm?: SignatureAlgorithm | MacAlgorithm) => any;
-  keyOps: (keyOps?: unknown) => any[] | undefined;
-  baseIv: (baseIv?: unknown) => unknown;
-  curve: (curve?: Curve) => any;
-  x: (x?: Uint8Array) => string | undefined;
-  y: (y?: Uint8Array) => string | undefined;
-  d: (d?: Uint8Array) => string | undefined;
-};
-//#endregion
 //#region src/mdoc/models/ble-options.d.ts
 declare enum BleOptionsKeys {
   PeripheralServerMode = 0,
@@ -497,6 +209,23 @@ declare class BleOptions extends CborStructure<BleOptionsEncodedStructure, BleOp
   static create(options: BleOptionsOptions): BleOptions;
 }
 //#endregion
+//#region src/mdoc/models/data-element-identifier.d.ts
+type DataElementIdentifier = string;
+//#endregion
+//#region src/mdoc/models/data-element-value.d.ts
+type DataElementValue = unknown;
+//#endregion
+//#region src/mdoc/check-callback.d.ts
+interface VerificationAssessment {
+  status: 'PASSED' | 'FAILED' | 'WARNING';
+  category: 'DOCUMENT_FORMAT' | 'DEVICE_AUTH' | 'ISSUER_AUTH' | 'DATA_INTEGRITY' | 'READER_AUTH';
+  check: string;
+  reason?: string;
+}
+type VerificationCallback = (item: VerificationAssessment) => void;
+declare const defaultVerificationCallback: VerificationCallback;
+declare const onCategoryCheck: (onCheck: VerificationCallback, category: VerificationAssessment["category"]) => (item: Omit<VerificationAssessment, "category">) => void;
+//#endregion
 //#region src/mdoc/models/nfc-options.d.ts
 declare const nfcOptionsSchema: z.ZodCodec<z.ZodMap<z.ZodUnknown, z.ZodUnknown>, z.ZodCustom<TypedMap<{
   0: number;
@@ -600,7 +329,7 @@ declare class DeviceRetrievalMethod extends CborStructure<DeviceRetrievalMethodE
   }, z.core.$strip>>;
   get type(): number;
   get version(): number;
-  get retrievalOptions(): Map<unknown, unknown> | WifiOptions | BleOptions | NfcOptions;
+  get retrievalOptions(): Map<unknown, unknown> | BleOptions | NfcOptions | WifiOptions;
   static create(options: DeviceRetrievalMethodOptions): DeviceRetrievalMethod;
 }
 //#endregion
@@ -615,7 +344,7 @@ declare class ProtocolInfo extends CborStructure<ProtocolInfoStructure> {
 type EDeviceKeyDecodedStructure = CoseKeyDecodedStructure;
 type EDeviceKeyEncodedStructure = CoseKeyEncodedStructure;
 type EDeviceKeyOptions = CoseKeyOptions;
-declare class EDeviceKey extends CoseKey {}
+declare class EDeviceKey extends CoseKey$1 {}
 //#endregion
 //#region src/mdoc/models/security.d.ts
 declare const securityEncodedSchema: z.ZodTuple<[z.ZodNumber, z.ZodCustom<DataItem<unknown>, DataItem<unknown>>], null>;
@@ -766,7 +495,7 @@ declare class DeviceEngagement extends CborStructure<DeviceEngagementEncodedStru
 type EReaderKeyDecodedStructure = CoseKeyDecodedStructure;
 type EReaderKeyEncodedStructure = CoseKeyEncodedStructure;
 type EReaderKeyOptions = CoseKeyOptions;
-declare class EReaderKey extends CoseKey {}
+declare class EReaderKey extends CoseKey$1 {}
 //#endregion
 //#region src/mdoc/models/handover.d.ts
 declare abstract class Handover<EncodedStructure = unknown, DecodedStructure = EncodedStructure> extends CborStructure<EncodedStructure, DecodedStructure> {
@@ -868,222 +597,37 @@ declare class SessionTranscript extends CborStructure<SessionTranscriptEncodedSt
   }, ctx: Pick<MdocContext, 'crypto'>): Promise<SessionTranscript>;
 }
 //#endregion
-//#region src/cose/mac0.d.ts
-declare const mac0EncodedSchema: z.ZodTuple<[z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>, z.ZodMap<z.ZodUnknown, z.ZodUnknown>, z.ZodNullable<z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>>, z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>], null>;
-declare const mac0DecodedSchema: z.ZodObject<{
-  protectedHeaders: z.ZodCustom<ProtectedHeaders, ProtectedHeaders>;
-  unprotectedHeaders: z.ZodCustom<UnprotectedHeaders, UnprotectedHeaders>;
-  payload: z.ZodNullable<z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>>;
-  tag: z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>;
-}, z.core.$strip>;
-type Mac0EncodedStructure = z.infer<typeof mac0EncodedSchema>;
-type Mac0DecodedStructure = z.infer<typeof mac0DecodedSchema>;
-type Mac0Options = {
-  protectedHeaders: ProtectedHeaders | ProtectedHeaderOptions['protectedHeaders'];
-  unprotectedHeaders: UnprotectedHeaders | UnprotectedHeaderOptions['unprotectedHeaders'];
-  externalAad?: Uint8Array;
-  payload?: Uint8Array | null;
-  detachedPayload?: Uint8Array;
-  privateKey: CoseKey;
-  ephemeralKey: CoseKey;
-  sessionTranscript: SessionTranscript | Uint8Array;
-};
-declare class Mac0 extends CborStructure<Mac0EncodedStructure, Mac0DecodedStructure> {
-  static tag: number;
-  static get encodingSchema(): z.ZodCodec<z.ZodTuple<[z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>, z.ZodMap<z.ZodUnknown, z.ZodUnknown>, z.ZodNullable<z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>>, z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>], null>, z.ZodObject<{
-    protectedHeaders: z.ZodCustom<ProtectedHeaders, ProtectedHeaders>;
-    unprotectedHeaders: z.ZodCustom<UnprotectedHeaders, UnprotectedHeaders>;
-    payload: z.ZodNullable<z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>>;
-    tag: z.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>;
-  }, z.core.$strip>>;
-  externalAad?: Uint8Array;
-  detachedPayload?: Uint8Array;
-  get protectedHeaders(): ProtectedHeaders;
-  get unprotectedHeaders(): UnprotectedHeaders;
-  get payload(): Uint8Array<ArrayBufferLike> | null;
-  get tag(): Uint8Array<ArrayBufferLike>;
-  get toBeAuthenticated(): Uint8Array<ArrayBufferLike>;
-  /**
-   * Decodes CBOR bytes into a Sign1 instance.
-   * Uses the encodingSchema's decode() method to validate and transform the decoded data.
-   */
-  static decode<T extends AnyCborStructure>(this: CborStructureStaticThis<T>, bytes: Uint8Array): T;
-  static toBeAuthenticated(options: {
-    payload: Uint8Array;
-    protectedHeaders: ProtectedHeaders;
-    externalAad?: Uint8Array;
-  }): Uint8Array<ArrayBufferLike>;
-  get signatureAlgorithmName(): MacAlgorithm;
-  static create(options: Mac0Options, ctx: Pick<MdocContext, 'crypto' | 'cose'>): Promise<Mac0>;
-}
-//#endregion
-//#region src/cose/sign1.d.ts
-declare const sign1EncodedSchema: z$1.ZodTuple<[z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>, z$1.ZodMap<z$1.ZodNumber, z$1.ZodUnknown>, z$1.ZodNullable<z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>>, z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>], null>;
-declare const sign1DecodedSchema: z$1.ZodObject<{
-  protected: z$1.ZodCustom<ProtectedHeaders, ProtectedHeaders>;
-  unprotected: z$1.ZodCustom<UnprotectedHeaders, UnprotectedHeaders>;
-  payload: z$1.ZodNullable<z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>>;
-  signature: z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>;
-}, z$1.core.$strip>;
-type Sign1EncodedStructure = z$1.infer<typeof sign1EncodedSchema>;
-type Sign1DecodedStructure = z$1.infer<typeof sign1DecodedSchema>;
-type Sign1Options = {
-  protectedHeaders?: ProtectedHeaders | ProtectedHeaderOptions['protectedHeaders'];
-  unprotectedHeaders?: UnprotectedHeaders | UnprotectedHeaderOptions['unprotectedHeaders'];
-  signingKey: CoseKey;
-  algorithm?: SignatureAlgorithm;
-  payload?: Uint8Array | null;
-  detachedPayload?: Uint8Array;
-  externalAad?: Uint8Array;
-};
-declare class Sign1 extends CborStructure<Sign1EncodedStructure, Sign1DecodedStructure> {
-  static tag: number;
-  static get encodingSchema(): z$1.ZodCodec<z$1.ZodTuple<[z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>, z$1.ZodMap<z$1.ZodNumber, z$1.ZodUnknown>, z$1.ZodNullable<z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>>, z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>], null>, z$1.ZodObject<{
-    protected: z$1.ZodCustom<ProtectedHeaders, ProtectedHeaders>;
-    unprotected: z$1.ZodCustom<UnprotectedHeaders, UnprotectedHeaders>;
-    payload: z$1.ZodNullable<z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>>;
-    signature: z$1.ZodCustom<Uint8Array<ArrayBufferLike>, Uint8Array<ArrayBufferLike>>;
-  }, z$1.core.$strip>>;
-  detachedPayload?: Uint8Array;
-  externalAad?: Uint8Array;
-  get protectedHeaders(): ProtectedHeaders;
-  get unprotectedHeaders(): UnprotectedHeaders;
-  get payload(): Uint8Array<ArrayBufferLike> | null;
-  get signature(): Uint8Array<ArrayBufferLike>;
-  get certificateChain(): Uint8Array<ArrayBufferLike>[];
-  get certificate(): Uint8Array<ArrayBufferLike>;
-  getIssuingCountry(ctx: Pick<MdocContext, 'x509'>): string;
-  getIssuingStateOrProvince(ctx: Pick<MdocContext, 'x509'>): string;
-  get toBeSigned(): Uint8Array<ArrayBufferLike>;
-  /**
-   * Decodes CBOR bytes into a Sign1 instance.
-   * Uses the encodingSchema's decode() method to validate and transform the decoded data.
-   */
-  static decode<T extends AnyCborStructure>(this: CborStructureStaticThis<T>, bytes: Uint8Array): T;
-  static toBeSigned(options: {
-    payload: Uint8Array;
-    protectedHeaders: ProtectedHeaders;
-    externalAad?: Uint8Array;
-  }): Uint8Array<ArrayBufferLike>;
-  get signatureAlgorithmName(): string;
-  get x5chain(): Uint8Array<ArrayBufferLike>[] | undefined;
-  verifySignature(options: {
-    key?: CoseKey;
-  }, ctx: Pick<MdocContext, 'cose' | 'x509'>): Promise<boolean>;
-  static create(options: Sign1Options, ctx: Pick<MdocContext, 'cose'>): Promise<Sign1>;
-}
-//#endregion
-//#region src/context.d.ts
-type MaybePromise<T> = Promise<T> | T;
-interface MdocContext {
-  crypto: {
-    random: (length: number) => Uint8Array;
-    digest: (input: {
-      digestAlgorithm: DigestAlgorithm;
-      bytes: Uint8Array;
-    }) => MaybePromise<Uint8Array>;
-    calculateEphemeralMacKey: (input: {
-      privateKey: Uint8Array;
-      publicKey: Uint8Array;
-      sessionTranscriptBytes: Uint8Array;
-      info: 'EMacKey' | 'SKReader' | 'SKDevice';
-    }) => MaybePromise<CoseKey>;
-  };
-  cose: {
-    sign1: {
-      sign: (input: {
-        toBeSigned: Uint8Array;
-        key: CoseKey;
-        algorithm?: SignatureAlgorithm;
-      }) => MaybePromise<Uint8Array>;
-      verify(input: {
-        key: CoseKey;
-        sign1: Sign1;
-      }): MaybePromise<boolean>;
-    };
-    mac0: {
-      sign: (input: {
-        key: CoseKey;
-        toBeAuthenticated: Uint8Array;
-      }) => MaybePromise<Uint8Array>;
-      verify(input: {
-        mac0: Mac0;
-        key: CoseKey;
-      }): MaybePromise<boolean>;
-    };
-  };
-  x509: {
-    getIssuerNameField: (input: {
-      certificate: Uint8Array;
-      field: string;
-    }) => string[];
-    getPublicKey: (input: {
-      certificate: Uint8Array;
-      alg: string;
-    }) => MaybePromise<CoseKey>;
-    verifyCertificateChain: (input: {
-      trustedCertificates: Uint8Array[];
-      x5chain: Uint8Array[];
-      now?: Date;
-    }) => MaybePromise<void>;
-    getCertificateData: (input: {
-      certificate: Uint8Array;
-    }) => MaybePromise<{
-      issuerName: string;
-      subjectName: string;
-      serialNumber: string;
-      thumbprint: string;
-      notBefore: Date;
-      notAfter: Date;
-      pem: string;
-    }>;
-  };
-}
-//#endregion
-//#region src/mdoc/models/data-element-identifier.d.ts
-type DataElementIdentifier = string;
-//#endregion
-//#region src/mdoc/models/data-element-value.d.ts
-type DataElementValue = unknown;
-//#endregion
-//#region src/mdoc/check-callback.d.ts
-interface VerificationAssessment {
-  status: 'PASSED' | 'FAILED' | 'WARNING';
-  category: 'DOCUMENT_FORMAT' | 'DEVICE_AUTH' | 'ISSUER_AUTH' | 'DATA_INTEGRITY' | 'READER_AUTH';
-  check: string;
-  reason?: string;
-}
-type VerificationCallback = (item: VerificationAssessment) => void;
-declare const defaultVerificationCallback: VerificationCallback;
-declare const onCategoryCheck: (onCheck: VerificationCallback, category: VerificationAssessment["category"]) => (item: Omit<VerificationAssessment, "category">) => void;
-//#endregion
 //#region src/mdoc/models/device-mac.d.ts
 type DeviceMacEncodedStructure = Mac0EncodedStructure;
 type DeviceMacDecodedStructure = Mac0DecodedStructure;
 type DeviceMacOptions = Mac0Options;
-declare class DeviceMac extends Mac0 {
+declare class DeviceMac extends Mac0$1 {
   verify(options: {
-    publicKey: CoseKey;
-    privateKey: CoseKey;
+    publicKey: CoseKey$1;
+    privateKey: CoseKey$1;
     info?: 'EMacKey' | 'SKReader' | 'SKDevice';
     sessionTranscript: SessionTranscript | Uint8Array;
   }, ctx: Pick<MdocContext, 'crypto' | 'cose'>): Promise<boolean>;
-  static create(options: DeviceMacOptions, ctx: Pick<MdocContext, 'cose' | 'crypto'>): Promise<DeviceMac>;
+  static create(options: DeviceMacOptions): DeviceMac;
+  createDeviceMacKey(options: {
+    publicKey: CoseKey$1;
+    privateKey: CoseKey$1;
+    sessionTranscript: SessionTranscript | Uint8Array;
+    info?: 'EMacKey' | 'SKReader' | 'SKDevice';
+  }, ctx: Pick<MdocContext, 'crypto' | 'cose'>): Promise<Uint8Array<ArrayBufferLike>>;
 }
 //#endregion
 //#region src/mdoc/models/device-signature.d.ts
 type DeviceSignatureEncodedStructure = Sign1EncodedStructure;
 type DeviceSignatureDecodedStructure = Sign1DecodedStructure;
 type DeviceSignatureOptions = Sign1Options;
-declare class DeviceSignature extends Sign1 {
-  static create(options: DeviceSignatureOptions, ctx: Pick<MdocContext, 'cose'>): Promise<DeviceSignature>;
-}
+declare class DeviceSignature extends Sign1$1 {}
 //#endregion
 //#region src/mdoc/models/device-key.d.ts
 type DeviceKeyDecodedStructure = CoseKeyDecodedStructure;
 type DeviceKeyEncodedStructure = CoseKeyEncodedStructure;
 type DeviceKeyOptions = CoseKeyOptions;
-declare class DeviceKey extends CoseKey {}
+declare class DeviceKey extends CoseKey$1 {}
 //#endregion
 //#region src/mdoc/models/namespace.d.ts
 type Namespace = string;
@@ -1281,8 +825,8 @@ type IssuerAuthEncodedStructure = Sign1EncodedStructure;
 type IssuerAuthOptions = Omit<Sign1Options, 'payload'> & {
   payload?: Sign1Options['payload'] | MobileSecurityObject;
 };
-declare class IssuerAuth extends Sign1 {
-  static create(options: IssuerAuthOptions, ctx: Pick<MdocContext, 'cose'>): Promise<IssuerAuth>;
+declare class IssuerAuth extends Sign1$1 {
+  static create(options: IssuerAuthOptions): IssuerAuth;
   get mobileSecurityObject(): MobileSecurityObject;
   verify(options: {
     verificationCallback?: VerificationCallback;
@@ -1522,7 +1066,7 @@ declare class DeviceAuth extends CborStructure<DeviceAuthEncodedStructure, Devic
   verify(options: {
     document: Document;
     verificationCallback?: VerificationCallback;
-    ephemeralMacPrivateKey?: CoseKey;
+    ephemeralMacPrivateKey?: CoseKey$1;
     sessionTranscript: SessionTranscript | Uint8Array;
   }, ctx: Pick<MdocContext, 'crypto' | 'cose'>): Promise<void>;
   static create(options: DeviceAuthOptions): DeviceAuth;
@@ -1612,12 +1156,12 @@ declare class ReaderAuthentication extends CborStructure<ReaderAuthenticationEnc
 type ReaderAuthEncodedStructure = Sign1EncodedStructure;
 type ReaderAuthDecodedStructure = Sign1DecodedStructure;
 type ReaderAuthOptions = Sign1Options;
-declare class ReaderAuth extends Sign1 {
+declare class ReaderAuth extends Sign1$1 {
   verify(options: {
     readerAuthentication: ReaderAuthentication | ReaderAuthenticationOptions;
     verificationCallback?: VerificationCallback;
   }, ctx: Pick<MdocContext, 'cose' | 'x509'>): Promise<void>;
-  static create(options: ReaderAuthOptions, ctx: Pick<MdocContext, 'cose'>): Promise<ReaderAuth>;
+  static create(options: ReaderAuthOptions): ReaderAuth;
 }
 //#endregion
 //#region src/mdoc/models/doc-request.d.ts
@@ -1739,7 +1283,7 @@ declare class DeviceResponse extends CborStructure<DeviceResponseEncodedStructur
   verify(options: {
     deviceRequest?: DeviceRequest;
     sessionTranscript: SessionTranscript | Uint8Array;
-    ephemeralReaderKey?: CoseKey;
+    ephemeralReaderKey?: CoseKey$1;
     disableCertificateChainValidation?: boolean;
     trustedCertificates: Uint8Array[];
     now?: Date;
@@ -1755,11 +1299,11 @@ declare class DeviceResponse extends CborStructure<DeviceResponseEncodedStructur
     issuerSigned: Array<IssuerSigned>;
     deviceNamespaces?: DeviceNamespaces;
     mac?: {
-      ephemeralKey: CoseKey;
-      signingKey: CoseKey;
+      ephemeralKey: CoseKey$1;
+      signingKey: CoseKey$1;
     };
     signature?: {
-      signingKey: CoseKey;
+      signingKey: CoseKey$1;
     };
   }, ctx: Pick<MdocContext, 'crypto' | 'cose'>): Promise<DeviceResponse>;
   static createSimple(options: DeviceResponseOptions): DeviceResponse;
@@ -1822,14 +1366,14 @@ declare class DeviceSignedBuilder {
   constructor(docType: DocType, ctx: Pick<MdocContext, 'cose' | 'crypto'>);
   addDeviceNamespace(namespace: Namespace, value: Record<string, unknown>): this;
   sign(options: {
-    signingKey: CoseKey;
-    algorithm: SignatureAlgorithm;
+    signingKey: CoseKey$1;
+    algorithm: SignatureAlgorithm$1;
     sessionTranscript: SessionTranscript;
     derCertificate: string;
   }): Promise<DeviceSigned>;
   tag(options: {
-    publicKey: CoseKey;
-    privateKey: CoseKey;
+    publicKey: CoseKey$1;
+    privateKey: CoseKey$1;
     sessionTranscript: SessionTranscript;
     algorithm: MacAlgorithm;
     derCertificate: string;
@@ -1845,8 +1389,8 @@ declare class IssuerSignedBuilder {
   addIssuerNamespace(namespace: Namespace, values: Record<string, unknown> | Map<string, unknown>): this;
   private convertIssuerNamespacesIntoValueDigests;
   sign(options: {
-    signingKey: CoseKey;
-    algorithm: SignatureAlgorithm;
+    signingKey: CoseKey$1;
+    algorithm: SignatureAlgorithm$1;
     digestAlgorithm: DigestAlgorithm;
     validityInfo: ValidityInfo | ValidityInfoOptions;
     deviceKeyInfo: DeviceKeyInfo | DeviceKeyInfoOptions;
@@ -1893,11 +1437,11 @@ declare class Holder {
     issuerSigned: Array<IssuerSigned>;
     deviceNamespaces?: DeviceNamespaces;
     mac?: {
-      ephemeralKey: CoseKey;
-      signingKey: CoseKey;
+      ephemeralKey: CoseKey$1;
+      signingKey: CoseKey$1;
     };
     signature?: {
-      signingKey: CoseKey;
+      signingKey: CoseKey$1;
     };
   }, context: Pick<MdocContext, 'cose' | 'crypto'>): Promise<DeviceResponse>;
 }
@@ -1908,8 +1452,8 @@ declare class Issuer {
   constructor(docType: DocType, ctx: Pick<MdocContext, 'cose' | 'crypto'>);
   addIssuerNamespace(namespace: Namespace, value: Record<string | number, unknown>): this;
   sign(options: {
-    signingKey: CoseKey | Record<string | number, unknown>;
-    algorithm: SignatureAlgorithm;
+    signingKey: CoseKey$1 | Record<string | number, unknown>;
+    algorithm: SignatureAlgorithm$1;
     digestAlgorithm: DigestAlgorithm;
     validityInfo: ValidityInfo | ValidityInfoOptions;
     deviceKeyInfo: DeviceKeyInfo | DeviceKeyInfoOptions;
@@ -1926,7 +1470,7 @@ declare class Verifier {
     deviceRequest?: DeviceRequest;
     deviceResponse: Uint8Array | DeviceResponse;
     sessionTranscript: SessionTranscript | Uint8Array;
-    ephemeralReaderKey?: CoseKey;
+    ephemeralReaderKey?: CoseKey$1;
     disableCertificateChainValidation?: boolean;
     trustedCertificates: Uint8Array[];
     now?: Date;
@@ -1935,5 +1479,5 @@ declare class Verifier {
   }, ctx: Pick<MdocContext, 'cose' | 'x509' | 'crypto'>): Promise<void>;
 }
 //#endregion
-export { AtLeastOneCertificateRequiredError, BleOptions, BleOptionsDecodedStructure, BleOptionsEncodedStructure, BleOptionsOptions, CoseCertificateNotFoundError, CoseDNotDefinedError, CoseEphemeralMacKeyIsRequiredError, CoseInvalidAlgorithmError, CoseInvalidKtyForRawError, CoseInvalidSignatureError, CoseInvalidTypeForKeyError, CoseInvalidValueForKtyError, CoseKNotDefinedError, CoseKey, CoseKeyDecodedStructure, CoseKeyEncodedStructure, CoseKeyOptions, CoseKeyParameter, CoseKeyTypeNotSupportedForPrivateKeyExtractionError, CosePayloadInvalidStructureError, CosePayloadMustBeDefinedError, CosePayloadMustBeNullError, CoseUnsupportedMacError, CoseXNotDefinedError, CoseYNotDefinedError, Curve, DataElementIdentifier, DataElementValue, DataItem, DateOnly, DeviceAuth, DeviceAuthDecodedStructure, DeviceAuthEncodedStructure, DeviceAuthOptions, DeviceAuthentication, DeviceAuthenticationDecodedStructure, DeviceAuthenticationEncodedStructure, DeviceAuthenticationOptions, DeviceEngagement, DeviceEngagementDecodedStructure, DeviceEngagementEncodedStructure, DeviceEngagementOptions, DeviceKey, DeviceKeyDecodedStructure, DeviceKeyEncodedStructure, DeviceKeyInfo, DeviceKeyInfoDecodedStructure, DeviceKeyInfoEncodedStructure, DeviceKeyInfoOptions, DeviceKeyOptions, DeviceMac, DeviceMacDecodedStructure, DeviceMacEncodedStructure, DeviceMacOptions, DeviceNamespaces, DeviceNamespacesDecodedStructure, DeviceNamespacesEncodedStructure, DeviceNamespacesOptions, DeviceRequest, DeviceRequestDecodedStructure, DeviceRequestEncodedStructure, DeviceRequestOptions, DeviceResponse, DeviceResponseDecodedStructure, DeviceResponseEncodedStructure, DeviceResponseOptions, DeviceRetrievalMethod, DeviceRetrievalMethodDecodedStructure, DeviceRetrievalMethodEncodedStructure, DeviceRetrievalMethodOptions, DeviceRetrievalMethodType, DeviceSignature, DeviceSignatureDecodedStructure, DeviceSignatureEncodedStructure, DeviceSignatureOptions, DeviceSigned, DeviceSignedBuilder, DeviceSignedDecodedStructure, DeviceSignedEncodedStructure, DeviceSignedItems, DeviceSignedItemsOptions, DeviceSignedItemsStructure, DeviceSignedOptions, Digest, DigestAlgorithm, DigestId, DocRequest, DocRequestDecodedStructure, DocRequestEncodedStructure, DocRequestOptions, DocType, Document, DocumentDecodedStructure, DocumentEncodedStructure, DocumentError, DocumentErrorOptions, DocumentErrorStructure, DocumentOptions, DuplicateDocumentInDeviceResponseError, DuplicateNamespaceInIssuerNamespacesError, EDeviceKey, EDeviceKeyDecodedStructure, EDeviceKeyEncodedStructure, EDeviceKeyOptions, EReaderKey, EReaderKeyDecodedStructure, EReaderKeyEncodedStructure, EReaderKeyOptions, EitherSignatureOrMacMustBeProvidedError, EncryptionAlgorithm, ErrorCode, ErrorItems, ErrorItemsOptions, ErrorItemsStructure, Errors, ErrorsDecodedStructure, ErrorsEncodedStructure, ErrorsOptions, Header, Holder, IntentToRetain, Issuer, IssuerAuth, IssuerAuthEncodedStructure, IssuerAuthOptions, IssuerNamespaces, IssuerNamespacesDecodedStructure, IssuerNamespacesEncodedStructure, IssuerNamespacesOptions, IssuerSigned, IssuerSignedBuilder, IssuerSignedDecodedStructure, IssuerSignedEncodedStructure, IssuerSignedItem, IssuerSignedItemDecodedStructure, IssuerSignedItemEncodedStructure, IssuerSignedItemOptions, IssuerSignedOptions, ItemsRequest, ItemsRequestDecodedStructure, ItemsRequestEncodedStructure, ItemsRequestOptions, KeyAuthorizations, KeyAuthorizationsDecodedStructure, KeyAuthorizationsEncodedStructure, KeyAuthorizationsOptions, KeyInfo, KeyInfoDecodedStructure, KeyInfoEncodedStructure, KeyInfoOptions, KeyOps, KeyType, Mac0, Mac0DecodedStructure, Mac0EncodedStructure, Mac0Options, MacAlgorithm, MdlError, MdlParseError, MdocContext, MobileSecurityObject, MobileSecurityObjectDecodedStructure, MobileSecurityObjectEncodedStructure, MobileSecurityObjectOptions, Namespace, NfcHandover, NfcHandoverDecodedStructure, NfcHandoverEncodedStructure, NfcHandoverOptions, NfcOptions, NfcOptionsDecodedStructure, NfcOptionsEncodedStructure, NfcOptionsOptions, Oidc, OidcDecodedStructure, OidcEncodedStructure, OidcOptions, PresentationDefinitionOrDocRequestsAreRequiredError, ProtectedHeaderOptions, ProtectedHeaders, ProtectedHeadersDecodedStructure, ProtectedHeadersEncodedStructure, ProtocolInfo, ProtocolInfoStructure, QrHandover, QrHandoverStructure, ReaderAuth, ReaderAuthDecodedStructure, ReaderAuthEncodedStructure, ReaderAuthOptions, RetrievalOptions, Security, SecurityDecodedStructure, SecurityEncodedStructure, SecurityOptions, ServerRetrievalMethod, ServerRetrievalMethodDecodedStructure, ServerRetrievalMethodEncodedStructure, ServerRetrievalMethodOptions, SessionTranscript, SessionTranscriptDecodedStructure, SessionTranscriptEncodedStructure, SessionTranscriptOptions, SessionTranscriptOrSessionTranscriptBytesAreRequiredError, Sign1, Sign1DecodedStructure, Sign1EncodedStructure, Sign1Options, SignatureAlgorithm, SignatureAlgorithmDoesNotMatchSigningKeyAlgorithmError, TypedMap, UnprotectedHeaderOptions, UnprotectedHeaders, UnprotectedHeadersStructure, ValidityInfo, ValidityInfoDecodedStructure, ValidityInfoEncodedStructure, ValidityInfoOptions, ValueDigestOptions, ValueDigests, ValueDigestsStructure, VerificationAssessment, VerificationCallback, Verifier, WebApi, WebApiDecodedStructure, WebApiEncodedStructure, WebApiOptions, WifiOptions, WifiOptionsDecodedStructure, WifiOptionsEncodedStructure, WifiOptionsOptions, base64, base64url, bytesToString, cborDecode, cborEncode, compareBytes, concatBytes, coseKeyToJwk, coseOptionsJwkMap, defaultVerificationCallback, deviceSignedItemsSchema, errorItemsSchema, hex, issuerNamespacesDecodedSchema, issuerNamespacesEncodedSchema, issuerSignedItemSchema, jwkCoseOptionsMap, jwkToCoseKey, limitDisclosureToDeviceRequestNameSpaces, onCategoryCheck, protectedHeadersDecodedStructure, protectedHeadersEncodedStructure, sessionTranscriptEncodedSchema, stringToBytes, typedMap, unprotectedHeadersStructure };
+export { AtLeastOneCertificateRequiredError, BleOptions, BleOptionsDecodedStructure, BleOptionsEncodedStructure, BleOptionsOptions, CoseKey, Curve, DataElementIdentifier, DataElementValue, DateOnly, DeviceAuth, DeviceAuthDecodedStructure, DeviceAuthEncodedStructure, DeviceAuthOptions, DeviceAuthentication, DeviceAuthenticationDecodedStructure, DeviceAuthenticationEncodedStructure, DeviceAuthenticationOptions, DeviceEngagement, DeviceEngagementDecodedStructure, DeviceEngagementEncodedStructure, DeviceEngagementOptions, DeviceKey, DeviceKeyDecodedStructure, DeviceKeyEncodedStructure, DeviceKeyInfo, DeviceKeyInfoDecodedStructure, DeviceKeyInfoEncodedStructure, DeviceKeyInfoOptions, DeviceKeyOptions, DeviceMac, DeviceMacDecodedStructure, DeviceMacEncodedStructure, DeviceMacOptions, DeviceNamespaces, DeviceNamespacesDecodedStructure, DeviceNamespacesEncodedStructure, DeviceNamespacesOptions, DeviceRequest, DeviceRequestDecodedStructure, DeviceRequestEncodedStructure, DeviceRequestOptions, DeviceResponse, DeviceResponseDecodedStructure, DeviceResponseEncodedStructure, DeviceResponseOptions, DeviceRetrievalMethod, DeviceRetrievalMethodDecodedStructure, DeviceRetrievalMethodEncodedStructure, DeviceRetrievalMethodOptions, DeviceRetrievalMethodType, DeviceSignature, DeviceSignatureDecodedStructure, DeviceSignatureEncodedStructure, DeviceSignatureOptions, DeviceSigned, DeviceSignedBuilder, DeviceSignedDecodedStructure, DeviceSignedEncodedStructure, DeviceSignedItems, DeviceSignedItemsOptions, DeviceSignedItemsStructure, DeviceSignedOptions, Digest, DigestId, DocRequest, DocRequestDecodedStructure, DocRequestEncodedStructure, DocRequestOptions, DocType, Document, DocumentDecodedStructure, DocumentEncodedStructure, DocumentError, DocumentErrorOptions, DocumentErrorStructure, DocumentOptions, DuplicateDocumentInDeviceResponseError, DuplicateNamespaceInIssuerNamespacesError, EDeviceKey, EDeviceKeyDecodedStructure, EDeviceKeyEncodedStructure, EDeviceKeyOptions, EReaderKey, EReaderKeyDecodedStructure, EReaderKeyEncodedStructure, EReaderKeyOptions, EitherSignatureOrMacMustBeProvidedError, ErrorCode, ErrorItems, ErrorItemsOptions, ErrorItemsStructure, Errors, ErrorsDecodedStructure, ErrorsEncodedStructure, ErrorsOptions, Holder, IntentToRetain, Issuer, IssuerAuth, IssuerAuthEncodedStructure, IssuerAuthOptions, IssuerNamespaces, IssuerNamespacesDecodedStructure, IssuerNamespacesEncodedStructure, IssuerNamespacesOptions, IssuerSigned, IssuerSignedBuilder, IssuerSignedDecodedStructure, IssuerSignedEncodedStructure, IssuerSignedItem, IssuerSignedItemDecodedStructure, IssuerSignedItemEncodedStructure, IssuerSignedItemOptions, IssuerSignedOptions, ItemsRequest, ItemsRequestDecodedStructure, ItemsRequestEncodedStructure, ItemsRequestOptions, KeyAuthorizations, KeyAuthorizationsDecodedStructure, KeyAuthorizationsEncodedStructure, KeyAuthorizationsOptions, KeyInfo, KeyInfoDecodedStructure, KeyInfoEncodedStructure, KeyInfoOptions, KeyOps, KeyType, Mac0, MdlError, MdlParseError, MdocContext, MobileSecurityObject, MobileSecurityObjectDecodedStructure, MobileSecurityObjectEncodedStructure, MobileSecurityObjectOptions, Namespace, NfcHandover, NfcHandoverDecodedStructure, NfcHandoverEncodedStructure, NfcHandoverOptions, NfcOptions, NfcOptionsDecodedStructure, NfcOptionsEncodedStructure, NfcOptionsOptions, Oidc, OidcDecodedStructure, OidcEncodedStructure, OidcOptions, PresentationDefinitionOrDocRequestsAreRequiredError, ProtectedHeaders, ProtocolInfo, ProtocolInfoStructure, QrHandover, QrHandoverStructure, ReaderAuth, ReaderAuthDecodedStructure, ReaderAuthEncodedStructure, ReaderAuthOptions, RegisteredCwtClaimKey, RegisteredCwtHeaderClaimKey, RetrievalOptions, Security, SecurityDecodedStructure, SecurityEncodedStructure, SecurityOptions, ServerRetrievalMethod, ServerRetrievalMethodDecodedStructure, ServerRetrievalMethodEncodedStructure, ServerRetrievalMethodOptions, SessionTranscript, SessionTranscriptDecodedStructure, SessionTranscriptEncodedStructure, SessionTranscriptOptions, SessionTranscriptOrSessionTranscriptBytesAreRequiredError, Sign1, SignatureAlgorithm, SignatureAlgorithmDoesNotMatchSigningKeyAlgorithmError, TypedMap, UnprotectedHeaders, ValidityInfo, ValidityInfoDecodedStructure, ValidityInfoEncodedStructure, ValidityInfoOptions, ValueDigestOptions, ValueDigests, ValueDigestsStructure, VerificationAssessment, VerificationCallback, Verifier, WebApi, WebApiDecodedStructure, WebApiEncodedStructure, WebApiOptions, WifiOptions, WifiOptionsDecodedStructure, WifiOptionsEncodedStructure, WifiOptionsOptions, base64, base64url, bytesToString, cborDecode, cborEncode, compareBytes, concatBytes, defaultVerificationCallback, deviceSignedItemsSchema, errorItemsSchema, hex, issuerNamespacesDecodedSchema, issuerNamespacesEncodedSchema, issuerSignedItemSchema, limitDisclosureToDeviceRequestNameSpaces, onCategoryCheck, sessionTranscriptEncodedSchema, stringToBytes, typedMap };
 //# sourceMappingURL=index.d.mts.map